What is AI allowed to do and what not? The answer to this also determines possible risks with autonomous machines. It is not enough to establish guidelines for the use of AI; the policy must also be technically controlled and enforced, for example, with IAM.
To control the permissions of machines, a comprehensive application of Identity and Access Management can help.
It is the classic scenario when discussing autonomous machines: "the eerily autonomous vehicle," as the Federal Office for Information Security (BSI) once called it. The autonomous vehicle vividly illustrates how dangerous it can be when the underlying artificial intelligence makes mistakes and crosses boundaries.
Challenge of autonomous driving
In road traffic, the decisions of AI must be understandable, and functional safety must be ensured at all times, as the Fraunhofer Institute for Cognitive Systems IKS emphasizes. The EU Agency for Cybersecurity ENISA lists a variety of AI risks that can make autonomous vehicles and other machines a threat. AI systems and autonomous machines must adhere to defined rules to minimize risks, and they must be protected from manipulation and misuse. This includes, for example, that AI systems as controllers of autonomous machines may only use certain data to prevent manipulation. The BSI explicitly warns against data attacks on AI.
Such attacks can start as early as the training of an AI system by manipulating the underlying data (poisoning attacks), according to the BSI. Especially when data or pre-trained models from external sources are used, these attack opportunities arise.
Obviously, you have to check and limit the data sources to prevent that. But how do you do that?
AI policies are important, but they are not enough
The EU Cybersecurity Agency warns of AI dangers that can also lead to risks in autonomous machines. To mitigate these risks, the permissions of autonomous systems should be reviewed and limited.
(Image: ENISA)
Now, AI guidelines can specify which data sources are allowed for training an AI and who is permitted to make data inputs during operation that can influence the AI. As shown by the so-called Blueprint for an AI Bill of Rights, the steps from principles to practice ("From Principles to Practice") must not be omitted. Technical implementation is required.
It is also not sufficient for us humans to specify in IT policies who is allowed to use what, when, for what purpose, and how. Additionally, access to IT systems and the access to data, applications, and interfaces must be controlled and technically enforced.
Just like with humans, the guidelines for autonomous machines and AI systems must not only be documented, but they also require technical implementation. Crucial for implementation is that permissions are always tied to a specific digital identity. This is done in IAM (Identity and Access Management).
However, since digital identities exist not only for humans but also for machines and AI systems, the application of IAM is also evident in the area of autonomous machines and AI processes.
Access controls and permissions: Access to LLM training datasets should be restricted and controlled. The use of these datasets should only be allowed for authorized individuals, organizations, and bodies. Access permissions can be governed by contracts, licenses, or other legal agreements. These agreements can set forth the conditions for the use of datasets.
But this should not only apply to “individuals, organizations, and entities” and should not only be regulated contractually.
Rather, data access and the use of other system resources should be technically controlled and resolved for machines and AI systems through IAM. Solutions like Azure Role-Based Access Control, or Azure RBAC, could not only manage which human user roles are allowed to use Azure Open AI Service but also which machine identities and other AI systems are permitted to do so. A Data Access Governance that checks and regulates who can access sensitive data could also apply this to machine IDs and identities of AI systems.
With offerings like Glean or Adobe Experience Platform (Attribute-based access control in Customer AI), it can be determined whether and how certain data may be used by generative AI. Such an approach shows the way how guidelines for autonomous machines and integrated AI systems can be implemented in detail.
Also regulate access to applications, interfaces, and AI services
In addition to the guidelines for data access, IAM solutions can also be used to implement specifications regarding which identity may use certain applications, interfaces, services, or AI services. It is possible to define under which conditions a possibly autonomous machine should gain access to a specific AI.
Date: 08.12.2025
Naturally, we always handle your personal data responsibly. Any personal data we receive from you is processed in accordance with applicable data protection legislation. For detailed information please see our privacy policy.
Consent to the use of data for promotional purposes
I hereby consent to Vogel Communications Group GmbH & Co. KG, Max-Planck-Str. 7-9, 97082 Würzburg including any affiliated companies according to §§ 15 et seq. AktG (hereafter: Vogel Communications Group) using my e-mail address to send editorial newsletters. A list of all affiliated companies can be found here
Newsletter content may include all products and services of any companies mentioned above, including for example specialist journals and books, events and fairs as well as event-related products and services, print and digital media offers and services such as additional (editorial) newsletters, raffles, lead campaigns, market research both online and offline, specialist webportals and e-learning offers. In case my personal telephone number has also been collected, it may be used for offers of aforementioned products, for services of the companies mentioned above, and market research purposes.
Additionally, my consent also includes the processing of my email address and telephone number for data matching for marketing purposes with select advertising partners such as LinkedIn, Google, and Meta. For this, Vogel Communications Group may transmit said data in hashed form to the advertising partners who then use said data to determine whether I am also a member of the mentioned advertising partner portals. Vogel Communications Group uses this feature for the purposes of re-targeting (up-selling, cross-selling, and customer loyalty), generating so-called look-alike audiences for acquisition of new customers, and as basis for exclusion for on-going advertising campaigns. Further information can be found in section “data matching for marketing purposes”.
In case I access protected data on Internet portals of Vogel Communications Group including any affiliated companies according to §§ 15 et seq. AktG, I need to provide further data in order to register for the access to such content. In return for this free access to editorial content, my data may be used in accordance with this consent for the purposes stated here. This does not apply to data matching for marketing purposes.
Right of revocation
I understand that I can revoke my consent at will. My revocation does not change the lawfulness of data processing that was conducted based on my consent leading up to my revocation. One option to declare my revocation is to use the contact form found at https://contact.vogel.de. In case I no longer wish to receive certain newsletters, I have subscribed to, I can also click on the unsubscribe link included at the end of a newsletter. Further information regarding my right of revocation and the implementation of it as well as the consequences of my revocation can be found in the data protection declaration, section editorial newsletter.
With concepts and solutions like IAM, detailed boundaries for intelligent, autonomous machines can be defined and enforced. It is possible to specify which rights an autonomous machine may have and which it may not, similar to setting up a permissions and roles system for users. Therefore, AI policies and IAM should be closely linked so that autonomous systems can be restricted in their rights to minimize possible risks, as quickly becomes apparent with autonomous driving.
:quality(80)/p7i.vogel.de/wcms/f9/7d/f97deef8fde21c8630d76411b18a20a7/0129803665v1.jpeg "Skoda has invested well over 220 million US dollars in the high-tech battery plant that has now opened in Mlada Boleslav. It has now started its work, which is highly automated ... (Image:Skoda)")
:quality(80)/p7i.vogel.de/wcms/f5/61/f561ad7c72ed41fd7a67ad9c481cb15d/0129799343v1.jpeg "Engine-generator units (MGU) from Steyr Motors are at work in the Leopard 2 main battle tank and the Leguan bridge vehicle (pictured). An extended contract is now to secure at least 500 more systems of this type for the Bundeswehr ... (Image:German Armed Forces)")
:quality(80)/p7i.vogel.de/wcms/6c/b5/6cb5ce2155433f6e73b16399adc4c561/0113143253v1.jpeg "In our China Market Insider we regularly provide you with relevant information directly from China. (Image:© Eisenhans - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/7f/fd/7ffd32863352c40f562f4245e4766e61/0129745849v1.jpeg "After US President Donald Trump once again resorted to his favorite weapon, tariffs, concerns rose in the EU that the so-called tariff deal could become invalid. But it looks as if the sea remains relatively calm ... (Image:F. Schneidler)")
:quality(80)/p7i.vogel.de/wcms/9c/ac/9cac6246660e746c5a3989399ac4d250/0128561645v1.jpeg "Artificial intelligence can drive efficiency in smart factories through centralized data management and predictive maintenance. (Picture: ©Fardived - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/6b/e2/6be235b5ad8a442ccd9d164b0b300d8b/0129763992v1.jpeg "As early as 2020, the Zimmer Group announced that it would convert its production to be sustainably CO2-neutral. (Image:Zimmer Group)")
:quality(80)/p7i.vogel.de/wcms/d4/ba/d4bab9481e66f8570f40eb8ef2a90198/0129795613v1.jpeg "A camera inspection during removal ensures that the components are placed correctly in the KLTs. (Image:Yaskawa Europe)")
:quality(80)/p7i.vogel.de/wcms/cb/56/cb56e42b01638b618e8d1b9b38f32faa/0129810132v1.jpeg "From summer 2026, \"AEON\" will support people at the BMW plant in Leipzig. (Image:diephotodesigner.de/BMW)")
:quality(80)/p7i.vogel.de/wcms/b5/5e/b55ed9355e0395ec0caf111d6af6b494/adobestock-495980372--c2-a9-20natali-mis-20-e2-80-93-20stock-adobe-com-6720x3778v1v1.jpeg "Which engineering skills will be in vogue in 2026? (Image:natali_mis - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/bf/a5/bfa5d882e93f159ce93e933742272b00/nord-vibn-cmyk-2196x1235v1v1.jpeg "With digital twins for virtual commissioning, Nord supports customers in ensuring that systems are available more quickly, even with complex drive systems. (Image:Nord Drivesystems)")
:quality(80)/p7i.vogel.de/wcms/f5/7e/f57ef535ee35e7b3b7ff15a8a63cef10/eds-keyvisual-8000x4496v1.jpeg "(Source: European Defence Supply)")
:quality(80)/p7i.vogel.de/wcms/af/a3/afa312176d956068af20491957eef642/newsimage418262-3100x1745v1v1.jpeg "The autonomous shuttle of the Aula AI project during a demonstration of sensor data with artificial fog. (Image:University of Magdeburg)")
:quality(80)/p7i.vogel.de/wcms/cb/23/cb23acd8e9de969d52522692b62b1892/0129680605v1.jpeg "The Z22198 is an extremely compact, three-axis IEPE acceleration sensor for measuring oscillations (vibrations) and shocks in demanding applications. With an edge length of just 0.24 inches and a weight of 0.03 ounces, it is ideal for lightweight structures and confined spaces. (Image:Copyright 2020 ScROGERS,All Rights Reserved)")
:quality(80)/p7i.vogel.de/wcms/c4/40/c44043c61f9dd99b80ccca398c284018/0129795093v1.jpeg "Subaru manufactures the E-Outback at its Yajima plant, marking the first time it has produced an electric vehicle in-house. (Image:Subaru)")
:quality(80)/p7i.vogel.de/wcms/fe/18/fe1824e572677900655c854f6c92c391/0129811281v1.jpeg "BMW and CATL deepen their partnership and work together on the battery pass. (Image:BMW)")
:quality(80)/p7i.vogel.de/wcms/15/54/15546b27b3a679871325ef6d92509a95/0129750872v1.jpeg "Webasto plans to open its third plant for sunroofs in India. (Image:Webasto)")
:quality(80)/p7i.vogel.de/wcms/70/14/70142aa050f8d3f7784c5ddbb2aba5f1/0129778339v1.jpeg "The software investments in production have saved time in Lacon production. (Image:Lacon)")
:quality(80)/p7i.vogel.de/wcms/5c/0f/5c0fee074c4b6c8e8c0993f3217c2f5a/0129773718v1.jpeg "The General Fusion demonstration reactor. (Image:General Fusion)")
:quality(80)/p7i.vogel.de/wcms/7f/c1/7fc1c83b8509df676d27518b82aaef02/0129764984v1.jpeg "China Resources Microelectronics (CR Micro) has announced its intention to increase the prices of its own products. (Image:China Resources Microelectronics)")
:quality(80)/p7i.vogel.de/wcms/eb/4e/eb4e449562174ec95a5b3d30fb0137a2/0129648135v1.jpeg "The III-V germanium PV module with an efficiency of 34.2% is currently the most efficient solar module in the world. (Image:Jacob Forster)")
:fill(fff,0)/images.vogel.de/vogelonline/companyimg/76800/76895/65.jpg "FAULHABER_120mm.jpg ()")
:fill(fff,0)/p7i.vogel.de/companies/69/88/69882c428938e/tmts2026-ticec-banner-en-2000px.png "tmts2026-ticec-banner-en-2000px (https://www.tmts.tw/en)")
:fill(fff,0)/p7i.vogel.de/companies/67/eb/67eba621ef6ea/logo2.png "logo2 (Wuxi InfiMotion)"){kind=logo}
:quality(80)/p7i.vogel.de/wcms/18/cb/18cb26e570eabb146e0503b468c864a8/0128555555v1.jpeg "To ensure cybersecurity, transparency throughout the entire supply chain is particularly relevant. Security gaps can arise not only from one's own employees. (Image: ©tippapatt - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/ab/a4/aba4c74c2d43808c68cc2251edeca633/0128019914v1.jpeg "With every networked machine, the number of machine identities in the smart factory grows and with it the security risk. (Picture: ©stock.adobe.com)")